CVE-2025-38352 — Linux Kernel Time-of-Check Time-of-Use (TOCTOU) Race Condition Vulnerability

2025-09-04 • CISA Known Exploited Vulnerability

[event] Linux kernel contains a time-of-check time-of-use (TOCTOU) race condition vulnerability that has a high impact on confidentiality, integrity, and availability.

> AFFECTED SOFTWARE

Field	Value
Vendor	Linux
Product	Kernel
CWE	CWE-367
CVE ID	CVE-2025-38352
Date Added	2025-09-04
Due Date	2025-09-25
Ransomware Campaign	Unknown

> MITIGATION

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Due Date: 2025-09-25

> REFERENCES

[1] https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=2c72...
[2] https://source.android.com/docs/security/bulletin/2025-09-01
[3] https://nvd.nist.gov/vuln/detail/CVE-2025-38352